Hello Experts, Is it possible to allow/deny access to certain web sites/categories to a specific users/user groups from LDAP server (imported in firepower)..? also to this how to user based policy not as per the zones/netowrks/subnets etc..? also kin...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,559) -
Cisco Bugs
(37) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(144) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(17) -
Cisco Secure Firewall Management Center (FMC)
(90) -
Cisco Secure Firewall Threat Defense (FTD)
(120) -
Cisco Security Cloud Control
(6) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(18) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(260) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(29) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,574) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(91) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,570) -
NGIPS
(1,873) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,775) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(634) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Good day, Can i disable signature for one host ? (not suppression) Thanks.
Hello all.. I have a HA pair of 5516's. For historic informational purposes: these have been on the same firmware and utilizing hairpin NAT without issues for 18months+ Recently in doing some network changes, I applied PBR to the inside interface t...
Hello Guy, I recently set up a Cisco ASA 9.x for a finical institution in the New DC and because theis project still on the implementation phase i yet to implement any form restriction on the ASA. I have no VPN,NAT connection on the ASA. i have allo...
Hi There, we are going to roll out Cisco ISE in our organization, so i would like to know 10 common issues -- when Cisco ISE is on network, what are the most common problems that comes on end points. need only on end point perspective. Can any one ...
Hi, It may be a repeated or very simple question. How can I see and store the traffic (Live & Historical) details that is passing my ASA (IPs, Ports etc..) Harmeet
i, My configuration is: access-list TEST extended permit ip host x.x.x.x host y.y.y.y access-group TEST out interface outside class-map IPS match access-list TEST policy-map global_policy class IPS sfr fail-open monitor-only service-policy ...
hi, i've upgrade an ASA to 9 code and it generated these lines. do i need these? is it safe to remove them? xlate per-session deny tcp any4 any4xlate per-session deny tcp any4 any6xlate per-session deny tcp any6 any4xlate per-session deny tcp any6 a...
Hello I'm trying to figure out if I need any access-list or NAT rules in order to communicate with networks advertised over the OSPF configuration. I have a third party connection coming into my Cisco ASA 5520. Please refer to my configuration below...
Resolved! Cisco Firepower 9300 with ASA OS
Hi Experts Could you confirm the HA setup options applicable for Cisco firepower 9300 chassis (SF-F9K-FXOS2.0-K9) running ASA OS (SF-F9K-ASA9.6.2-K9)? Native ASA appliances had active/standby and active/active options, depending on single or multipl...
Resolved! Cisco FirewPOWER Update fails after 6.1
I have Cisco ASA 5516X with FirePOWER services. I received the FirePOWER running SFR 5.4.1-211. Via CLI - I performed a reimage of the device to upgrade the boot image and the software to 6.0.0-1005. Via ASDM - I was able to use the update feature to...
Hello, Just wondering what version of ASA code people are running. I work for a large company that has a lot of diff. 5500 model firewalls and ASAv firewalls and running code all over the place. From 8.x to 9.3 to 9.5 to 9.6 and more. Im trying to f...
This is a followup to my related question /discussion/13270026/removing-aip-ssm-10-asa5510 I wish to to test the performance of my aging 5510 WITHOUT the AIP SSM-10 module. Will using the module shutdown command be sufficient? Thank you for your t...
Hello, I'm trying to deploy Identity Sources with my FirePower Management Center virtual version 6.1.0.1. I configured the user agent IP in the FMCv. I installed the user agent version 2.3-10. The user agent is installed on the AD-DC and the conne...
I've a FirePower 7110 that could not take in access control policy from my Management center. FirePower version - 5.4.0.4 Management center - 5.4.1.4 I'm getting this message when applying the policy from management center: "Access Control Policy ...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 11-07-2025 02:11 AM | ||
| 11-03-2025 09:48 AM | ||
| 10-31-2025 12:20 AM | ||
| 10-30-2025 12:44 PM | ||
| 10-30-2025 09:18 AM |
Top Solution Authors
| User | Count |
|---|---|
| 4 | |
| 4 | |
| 3 | |
| 2 | |
| 2 |
